PkgRadar

PyPI · pypi.org

aibrowser

Py Import Time Dynamic Dangerous Import: Dynamic __import__('sys') — reflection bypass for static checks.

Why PkgRadar flagged 1.1.1

SeveritySignalEvidence
highPy Import Time Dynamic Dangerous ImportDynamic __import__('sys') — reflection bypass for static checks. · aibrowser-1.1.1/python_bridge/__init__.py
highPy Runtime Base64 Decodebase64/hex decode combined with exec/subprocess — classic obfuscated payload pattern. · aibrowser-1.1.1/src/cli/aib_repl.py
highPy Runtime Dynamic Dangerous ImportDynamic __import__('os') — reflection bypass for static checks. · aibrowser-1.1.1/vendor/browser_use/skill_cli/python_session.py

Scanned versions

VersionVerdictScoreScanned (UTC)
1.1.1High risk1082026-05-30
1.1.0High risk1082026-05-30

Block this in CI

PkgRadar gates aibrowser (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem pypi aibrowser==1.1.1
Start free — 25 scans / moView full evidence